mortgage.leumi.co.il
Issued by Amazon RSA 2048 M02
About this certificate
This digital certificate with serial number 06:61:bb:98:7f:8a:c1:f7:4e:1e:49:bb:35:02:04:45 was issued on by Amazon.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=mortgage.leumi.co.il
Amazon
Organization:
Amazon
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 06:61:bb:98:7f:8a:c1:f7:4e:1e:49:bb:35:02:04:45Serial Number (int): 8482825662736302537062533114886227013
Serial Number lenght: 123 bits, 16 octets
SubjectKeyId: f1:db:1e:0b:ae:7e:a9:c0:03:2d:af:91:16:97:f5:c6:47:5e:e5:83
AuthorityKeyId: c0:31:52:cd:5a:50:c3:82:7c:74:71:ce:cb:e9:9c:f9:7a:eb:82:e2
Fingerprint (sha1): 20:48:ca:94:5c:8b:23:a7:cc:e3:92:fd:c8:37:2a:07:02:65:a9:ae
Fingerprint (sha256): 4e:8b:e5:42:f4:73:43:1c:34:3e:6b:ab:52:42:58:72:b3:51:d6:31:57:fd:da:a0:1a:c0:17:be:0c:af:fc:4a
Issuing Certificate URL: http://crt.r2m02.amazontrust.com/r2m02.cer
Revocation information
OCSP Server: http://ocsp.r2m02.amazontrust.comCRL Distribution Point: http://crl.r2m02.amazontrust.com/r2m02.crl
Check the revocation status for certificate mortgage.leumi.co.il
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for mortgage.leumi.co.il
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
mortgage.leumi.co.il
www.mortgage.leumi.co.il
www.mortgage.leumi.co.il
Other certificates including the domain name leumi.co.il
(limited to 100 certificates)
app.leumi.co.il
content.leumi.co.il
cert00037-azurecdn.akamaized.net
digitalforms.leumi.co.il
cash.leumi.co.il
english.leumi.co.il
english.leumi.co.il
cash.leumi.co.il
apps.leumi.co.il
biz.leumi.co.il
biz.leumi.co.il
cert00037-azurecdn.akamaized.net
www.leumi.co.il
arabic.leumi.co.il
callvu.leumi.co.il
m.leumi.co.il
now.leumi.co.il
www.leumi.co.il
cert00037-azurecdn.akamaized.net
leumi.co.il
cb.leumi.co.il
cert00037-azurecdn.akamaized.net
plus.leumi.co.il
fb.leumi.co.il
akamai-san113.exacttarget.com
biz.leumi.co.il
eservice.leumi.co.il
students.leumi.co.il
labs.leumi.co.il
cash.leumi.co.il
cash.leumi.co.il
goodys.leumi.co.il
content.leumi.co.il
manage.leumi.co.il
cert00037-azurecdn.akamaized.net
apps.leumi.co.il
biz.leumi.co.il
cert00037-azurecdn.akamaized.net
web.leumi.co.il
cert00037-azurecdn.akamaized.net
cb.leumi.co.il
labs.leumi.co.il
trustcompany.leumi.co.il
goodies.leumi.co.il
manage.leumi.co.il
labs.leumi.co.il
apps.leumi.co.il
students.leumi.co.il
eservice.leumi.co.il
english.leumi.co.il
leumi.co.il
labs.leumi.co.il
www.leumi.co.il
www.leumi.co.il
BIZ.leumi.co.il
trustcompany.leumi.co.il
labs.leumi.co.il
cert00037-azurecdn.akamaized.net
biz-ob.leumi.co.il
english.leumi.co.il
leumi.co.il
goodys.leumi.co.il
fb2.leumi.co.il
biz.leumi.co.il
callvu.leumi.co.il
app.leumi.co.il
snifd2egl.wpc.edgecastcdn.net
mortgage.leumi.co.il
biz.leumi.co.il
cert00037-azurecdn.akamaized.net
english.leumi.co.il
english.leumi.co.il
trustcompany.leumi.co.il
cb.leumi.co.il
digitalforms.leumi.co.il
fb2.leumi.co.il
now.leumi.co.il
fb2.leumi.co.il
biz.leumi.co.il
plus.leumi.co.il
cert00037-azurecdn.akamaized.net
cloud.digital.leumi.co.il
cert00037-azurecdn.akamaized.net
www.leumi.co.il
arabic.leumi.co.il
pilot.leumi.co.il
biz.leumi.co.il
rummobile.leumi.co.il
digitalforms.leumi.co.il
goodys.leumi.co.il
eservice.leumi.co.il
labs.leumi.co.il
students.leumi.co.il
www.leumi.co.il
english.leumi.co.il
labs.leumi.co.il
walkme.leumi.co.il
akamai-san113.exacttarget.com
cloud.digital.leumi.co.il
plus.leumi.co.il
content.leumi.co.il
cert00037-azurecdn.akamaized.net
digitalforms.leumi.co.il
cash.leumi.co.il
english.leumi.co.il
english.leumi.co.il
cash.leumi.co.il
apps.leumi.co.il
biz.leumi.co.il
biz.leumi.co.il
cert00037-azurecdn.akamaized.net
www.leumi.co.il
arabic.leumi.co.il
callvu.leumi.co.il
m.leumi.co.il
now.leumi.co.il
www.leumi.co.il
cert00037-azurecdn.akamaized.net
leumi.co.il
cb.leumi.co.il
cert00037-azurecdn.akamaized.net
plus.leumi.co.il
fb.leumi.co.il
akamai-san113.exacttarget.com
biz.leumi.co.il
eservice.leumi.co.il
students.leumi.co.il
labs.leumi.co.il
cash.leumi.co.il
cash.leumi.co.il
goodys.leumi.co.il
content.leumi.co.il
manage.leumi.co.il
cert00037-azurecdn.akamaized.net
apps.leumi.co.il
biz.leumi.co.il
cert00037-azurecdn.akamaized.net
web.leumi.co.il
cert00037-azurecdn.akamaized.net
cb.leumi.co.il
labs.leumi.co.il
trustcompany.leumi.co.il
goodies.leumi.co.il
manage.leumi.co.il
labs.leumi.co.il
apps.leumi.co.il
students.leumi.co.il
eservice.leumi.co.il
english.leumi.co.il
leumi.co.il
labs.leumi.co.il
www.leumi.co.il
www.leumi.co.il
BIZ.leumi.co.il
trustcompany.leumi.co.il
labs.leumi.co.il
cert00037-azurecdn.akamaized.net
biz-ob.leumi.co.il
english.leumi.co.il
leumi.co.il
goodys.leumi.co.il
fb2.leumi.co.il
biz.leumi.co.il
callvu.leumi.co.il
app.leumi.co.il
snifd2egl.wpc.edgecastcdn.net
mortgage.leumi.co.il
biz.leumi.co.il
cert00037-azurecdn.akamaized.net
english.leumi.co.il
english.leumi.co.il
trustcompany.leumi.co.il
cb.leumi.co.il
digitalforms.leumi.co.il
fb2.leumi.co.il
now.leumi.co.il
fb2.leumi.co.il
biz.leumi.co.il
plus.leumi.co.il
cert00037-azurecdn.akamaized.net
cloud.digital.leumi.co.il
cert00037-azurecdn.akamaized.net
www.leumi.co.il
arabic.leumi.co.il
pilot.leumi.co.il
biz.leumi.co.il
rummobile.leumi.co.il
digitalforms.leumi.co.il
goodys.leumi.co.il
eservice.leumi.co.il
labs.leumi.co.il
students.leumi.co.il
www.leumi.co.il
english.leumi.co.il
labs.leumi.co.il
walkme.leumi.co.il
akamai-san113.exacttarget.com
cloud.digital.leumi.co.il
plus.leumi.co.il
Certificate
The complete raw certificate details for mortgage.leumi.co.il in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF7jCCBNagAwIBAgIQBmG7mH+KwfdOHkm7NQIERTANBgkqhkiG9w0BAQsFADA8 MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRwwGgYDVQQDExNBbWF6b24g UlNBIDIwNDggTTAyMB4XDTI0MDMyNzAwMDAwMFoXDTI1MDQyNTIzNTk1OVowHzEd MBsGA1UEAxMUbW9ydGdhZ2UubGV1bWkuY28uaWwwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDCARB5n+igd7gztmWOevkP6EpBeSbLyv0GenlbV9/xyGJq EowW8qQ1sGzqfzn9j+j4FSB9AIk3R8B8rRSh7b0sqTMkxpf5I/rwM7gHDLJ5FY6o gtFPbXHqlCQUZfWOrnP5QhgMv95I42baxeAuwZNgVUiWhk2/8fm7Rslku4hTba7w UsmLj52+ziyffLtQOaFAm8nHvq7EcTFsmzo0EaF6edteI67L1mFJSBTZvbxDPSaz yq9Tj47g5mN+vPHYXd40fJyZWn6NGJG6T6zSD5uCLs+nvVRllrUHancTcRV9pYq0 CAGGjywQjcGt6n3ukVA2DHu1SzmSBgMcUeTzLFnjAgMBAAGjggMHMIIDAzAfBgNV HSMEGDAWgBTAMVLNWlDDgnx0cc7L6Zz5euuC4jAdBgNVHQ4EFgQU8dseC65+qcAD La+RFpf1xkde5YMwOQYDVR0RBDIwMIIUbW9ydGdhZ2UubGV1bWkuY28uaWyCGHd3 dy5tb3J0Z2FnZS5sZXVtaS5jby5pbDATBgNVHSAEDDAKMAgGBmeBDAECATAOBgNV HQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMDsGA1Ud HwQ0MDIwMKAuoCyGKmh0dHA6Ly9jcmwucjJtMDIuYW1hem9udHJ1c3QuY29tL3Iy bTAyLmNybDB1BggrBgEFBQcBAQRpMGcwLQYIKwYBBQUHMAGGIWh0dHA6Ly9vY3Nw LnIybTAyLmFtYXpvbnRydXN0LmNvbTA2BggrBgEFBQcwAoYqaHR0cDovL2NydC5y Mm0wMi5hbWF6b250cnVzdC5jb20vcjJtMDIuY2VyMAwGA1UdEwEB/wQCMAAwggF+ BgorBgEEAdZ5AgQCBIIBbgSCAWoBaAB2AE51oydcmhDDOFts1N8/Uusd8OCOG41p wLH6ZLFimjnfAAABjn+TsqEAAAQDAEcwRQIgVZv9uxhFtr8/HPVh3FOCX9M2xo9d S/LjqG+r4obbAk4CIQC3TCB9hjrZ1IT7r0xThdZNZFHNmEQPZzkNNF08OkTLgAB2 AH1ZHhLheCp7HGFnfF79+NCHXBSgTpWeuQMv2Q6MLnm4AAABjn+TsqYAAAQDAEcw RQIgYa19ta92SA8UMhKe6/dS8WqJZbKADf3gkjUfYoLtL1cCIQDrmp5TV9huCFzQ dY6KFvniO0KyRmku2WRpvWG9YviiCgB2AObSMWNAd4zBEEEG13G5zsHSQPaWhIb7 uocyHf0eN45QAAABjn+TsrYAAAQDAEcwRQIgZwju7OB7hLCpakr8Ql4FoWfEFGFF 0SOwB3HKTPGfFZwCIQCF4y897ZVHYj3RxtvQ5wvikXU5xnbZ4diUgVoZVvZxJzAN BgkqhkiG9w0BAQsFAAOCAQEArtG9tIAoQz6NF0ngTc7kFSBUqcE1sJzEiA+p80aY g9lqgOdlRPpiCYyZ2i8MeqPg6/Ym6BoplqYdbTe62x5HwfL3SdBrvf5ZLuNIRPGJ P6B448zEivVRD93dov69u31aLglT/Kiuj1YXby2NbMuYphX2QWeWtuiWmNdRUHJb 4BASDQJQ1sItqlIvYqtVONSuxSsDi5MWO4I4GaatyMDyu/djXdIsUEyUrwDRBN/W pNFPsbwvQtjba8rZb7pmPzci4JTkx03yEBJLxzJrv2PTAH6+5DhkaRICcG5715H7 1ZP6bIrGtcCFfg0I63nodngJgZmhkoVdsqyG6cl6JcrGAg== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwgEQeZ/ooHe4M7Zljnr5 D+hKQXkmy8r9Bnp5W1ff8chiahKMFvKkNbBs6n85/Y/o+BUgfQCJN0fAfK0Uoe29 LKkzJMaX+SP68DO4BwyyeRWOqILRT21x6pQkFGX1jq5z+UIYDL/eSONm2sXgLsGT YFVIloZNv/H5u0bJZLuIU22u8FLJi4+dvs4sn3y7UDmhQJvJx76uxHExbJs6NBGh ennbXiOuy9ZhSUgU2b28Qz0ms8qvU4+O4OZjfrzx2F3eNHycmVp+jRiRuk+s0g+b gi7Pp71UZZa1B2p3E3EVfaWKtAgBho8sEI3Brep97pFQNgx7tUs5kgYDHFHk8yxZ 4wIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 8482825662736302537062533114886227013 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon RSA 2048 M02' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-03-27 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-04-25 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'mortgage.leumi.co.il' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24490756016843987793274754442124496564413279417099260809068563896277001138812449128077455238898205273261891309961953049229276897760505291426884045251244817973461978627901506629017021700213164670559553742730112247809591432260514366713446251716316149847362675212994404319862801381016958199502320755664863839308550022499767403315863409565549269499367638101918231267961412679210720305304229105950596146288106009569513489820441138918897599397254563275511304671260080984686500406897697956751644066992611171634434994922650759338480866161731866455805206166356234745171610539443391276262064363283721738446198234679217832614371 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName c03152cd5a50c3827c7471cecbe99cf97aeb82e2 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) f1db1e0bae7ea9c0032daf911697f5c6475ee583 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (50 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mortgage.leumi.co.il' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.mortgage.leumi.co.il' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.r2m02.amazontrust.com/r2m02.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.r2m02.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.r2m02.amazontrust.com/r2m02.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (366 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (362 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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